Single Sign-On Overview
Identity allows connecting customers' users directories as an identity provider (IDP) and can be referred to as the "Identity Federation." When the federation is configured, the Identity delegates authentication and authorization of the end-users to the federated IDP; hence, our customers gain control over what employees can have access to the Ansarada Platform.
The following diagram demonstrates the simplified authorization flow (login) when identity federation is used (authorization protocol-specific details are omitted for brevity):
The following diagram demonstrates the simplified Ansarada platform invitation flow when identity federation is used (authorization protocol-specific details are omitted for brevity):
Single Sign-On Setup
Please send us the following information which will help us to set up your SSO configurations on Ansarada platform. Please include all fields:
Email Domains & SSO URL
SAML token mapping information
Once your SSO account will be set up on Ansarada side (following the information that you will send us in the previous step), we will provide information about what the Ansarada platform expects to receive as a result of successful authorization (Assertion Consumer Service URL and EntityID).
Once Steps 1 to 2 are done, we can schedule a testing session to make sure SSO was configured properly and go live. We suggest you set up a test email domain for testing purposes. For example, @test.awesomecorp.com
For any help throughout the process, please reach out to Ansarada support.